Realistic? I get messages from my intrusion detectors every day of folks from all over the world scanning my ports, trying to find a way in. They hit a block of IP addresses and scan all of them in that block. One thing you can do is to use tcp wrappers on your IP stack. Deny everybody but your own LAN addresses access to your machines. We've used wrappers for years on our Unix boxes here at work, and I think it even comes bundled in Ubuntu. You just have to modify your /etc/hosts.allow and /etc/hosts.deny files to enable tcpd. I think it's already built in to xinetd.
Mark At 02:28 PM 1/11/2009, you wrote: >Let's be realistic about this. What are the chances of a hacker randomly >scanning IP addresses and ports on the web and finding a running emcrsh >session? Even if one did, what is the likelihood of him then recognizing >the connection and trying to take over your machine? I'd say you have >probably got more chance of being hit on the head by a meteorite. > >If you are running a high profile operation and advertise the fact that >your machine is controlled over the internet then maybe someone would >give it a go. > >Les > > >Eric H. Johnson wrote: > > Les, > > > > The passwords are passed as plain text, so a determined hacker would not > > have much difficulty sniffing out the passwords. One option for increasing > > security over the Internet is to run the telnet session over an ssh > > connection. That way all transactions will be encrypted and it adds an > > additional password layer. The telnet socket could then be blocked at the > > router or firewall, and only allow the ssh socket through. > > > > Regards, > > Eric ------------------------------------------------------------------------------ Check out the new SourceForge.net Marketplace. It is the best place to buy or sell services for just about anything Open Source. http://p.sf.net/sfu/Xq1LFB _______________________________________________ Emc-users mailing list Emc-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/emc-users
